I have the following setup for someone.
ISP WAN (203.27.y.z) Main router (203.27.y.z) - Under building/estate control, appears to pass thru WAN IP - client (192.168.x.x) or (172.x.x.x - I need to check) - client (192.168.x.x) or (172.x.x.x) - etc etc - AR750S router (203.27.y.z) - Under my control, has picked up the WAN IP - client (192.168.8.x) - Currently - this range can be changed to anything - client (192.168.8.x) - client (192.168.8.x)
The AR750S provides DNS, (NextDNS), for the clients it handles, (192.168.8.x), but unfortunately it’s also handling incoming DNS requests from the rest of the clients behind the Main router.
So basically I want pick a DHCP assignment range outside the Main router and then I want to block any incoming requests from Class A,B,C Private that are outside my chosen range for the clients behind the AR750S router.
Can someone tell/show me what rules I need to implement in the Luci interface to implement the above, (currently they’re the default for f/w 3.203)?
I have another AR750S (f/w 3.211) I can experiment with.